Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Overview
overview
7Static
static
3a482b141cc...89.exe
windows7-x64
7a482b141cc...89.exe
windows10-2004-x64
7$PLUGINSDI...sh.dll
windows7-x64
3$PLUGINSDI...sh.dll
windows10-2004-x64
3$PLUGINSDI...em.dll
windows7-x64
3$PLUGINSDI...em.dll
windows10-2004-x64
3$PLUGINSDI...gs.dll
windows7-x64
3$PLUGINSDI...gs.dll
windows10-2004-x64
3General
-
Target
a482b141ccbb13ca7b366d409a8feaa27a120a67f23eb2f8eed5e068ff583489.exe
-
Size
589KB
-
Sample
240903-cn5dpawaqc
-
MD5
5176284ccdb6245cc137f00fe91fb654
-
SHA1
26df9fc2dd605de3d9934d2425c032420d0c7f2c
-
SHA256
a482b141ccbb13ca7b366d409a8feaa27a120a67f23eb2f8eed5e068ff583489
-
SHA512
f15fcc52399f0004e179bf6cd9e7f03a75b744f5af09c67fc1f70e1ca0aa6449536b6e06951431accd0b6037e729f4562380b7e16962fdf6fe115b4e947fd435
-
SSDEEP
12288:QC3wdew5NKr6XvipKVm8cdZV6UMb+DjFgJco/D691U:QAmewTW6fipKpS2HuFTyDh
Static task
static1
Behavioral task
behavioral1
Sample
a482b141ccbb13ca7b366d409a8feaa27a120a67f23eb2f8eed5e068ff583489.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
a482b141ccbb13ca7b366d409a8feaa27a120a67f23eb2f8eed5e068ff583489.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral3
Sample
$PLUGINSDIR/AdvSplash.dll
Resource
win7-20240705-en
Behavioral task
behavioral4
Sample
$PLUGINSDIR/AdvSplash.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral5
Sample
$PLUGINSDIR/System.dll
Resource
win7-20240729-en
Behavioral task
behavioral6
Sample
$PLUGINSDIR/System.dll
Resource
win10v2004-20240802-en
Behavioral task
behavioral7
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win7-20240704-en
Behavioral task
behavioral8
Sample
$PLUGINSDIR/nsDialogs.dll
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
a482b141ccbb13ca7b366d409a8feaa27a120a67f23eb2f8eed5e068ff583489.exe
-
Size
589KB
-
MD5
5176284ccdb6245cc137f00fe91fb654
-
SHA1
26df9fc2dd605de3d9934d2425c032420d0c7f2c
-
SHA256
a482b141ccbb13ca7b366d409a8feaa27a120a67f23eb2f8eed5e068ff583489
-
SHA512
f15fcc52399f0004e179bf6cd9e7f03a75b744f5af09c67fc1f70e1ca0aa6449536b6e06951431accd0b6037e729f4562380b7e16962fdf6fe115b4e947fd435
-
SSDEEP
12288:QC3wdew5NKr6XvipKVm8cdZV6UMb+DjFgJco/D691U:QAmewTW6fipKpS2HuFTyDh
Score7/10-
Loads dropped DLL
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
Suspicious use of SetThreadContext
-
-
-
Target
$PLUGINSDIR/AdvSplash.dll
-
Size
6KB
-
MD5
7a514e97fb29eccff3c7ab5147f4de9a
-
SHA1
e573f6e51d26d5601c68b7370fa94a030e561a9f
-
SHA256
5e71559df5cbcc4d98ebd9d4ddffabe18b047f9a50d98a96e46a4c0ac589105c
-
SHA512
f320dd5b60c5f1a6cba69b399d32151ca13c2b10f873f0c3cc05c3f1707ca80b396c5fc71175269117e0a6c13e56c51b89ea1dee47879fcc62d29f6ea8087604
-
SSDEEP
96:0NcIcmLEjNev3O2obNnNlXUjDftqlqCstWpgwoS:xIpLSG3O9XX+qlqntWpg
Score3/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
11KB
-
MD5
960a5c48e25cf2bca332e74e11d825c9
-
SHA1
da35c6816ace5daf4c6c1d57b93b09a82ecdc876
-
SHA256
484f8e9f194ed9016274ef3672b2c52ed5f574fb71d3884edf3c222b758a75a2
-
SHA512
cc450179e2d0d56aee2ccf8163d3882978c4e9c1aa3d3a95875fe9ba9831e07ddfd377111dc67f801fa53b6f468a418f086f1de7c71e0a5b634e1ae2a67cd3da
-
SSDEEP
192:jVL7iZJX76BiqsO7+UZEw+RlthVEoC0O3XB:g7ssOpZs/hS3X
Score3/10 -
-
-
Target
$PLUGINSDIR/nsDialogs.dll
-
Size
9KB
-
MD5
8ced0b79f7b9033d0795aab3be6d627c
-
SHA1
90c2043ffccd068f407c624c50ac7b795db1e132
-
SHA256
495bddc0be6e18e981db82fab9d1de55c7e269ab4ec3ff43035193bc017a307b
-
SHA512
e38f63a342729f5ff6d0db607d7877b65c33ed19e2b5a97dd868ece8c2a3e829d4153624943444be2f0de885496161d54c1da9594bdc0a5a0bcc8b727e2facb0
-
SSDEEP
96:3Rp41CMj95rKhkfL5RkEdKkcxM2DjDf3GEEE9v5E9av+Yx4indY7ndS27gA:3RujesS4HREEK5MYxDdqn420
Score3/10 -